2 * mdmon - monitor external metadata arrays
4 * Copyright (C) 2007-2009 Neil Brown <neilb@suse.de>
5 * Copyright (C) 2007-2009 Intel Corporation
7 * This program is free software; you can redistribute it and/or modify it
8 * under the terms and conditions of the GNU General Public License,
9 * version 2, as published by the Free Software Foundation.
11 * This program is distributed in the hope it will be useful, but WITHOUT
12 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
13 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
16 * You should have received a copy of the GNU General Public License along with
17 * this program; if not, write to the Free Software Foundation, Inc.,
18 * 51 Franklin St - Fifth Floor, Boston, MA 02110-1301 USA.
23 #include <sys/syscall.h>
24 #include <sys/select.h>
27 static char *array_states[] = {
28 "clear", "inactive", "suspended", "readonly", "read-auto",
29 "clean", "active", "write-pending", "active-idle", NULL };
30 static char *sync_actions[] = {
31 "idle", "reshape", "resync", "recover", "check", "repair", NULL
34 static int write_attr(char *attr, int fd)
36 return write(fd, attr, strlen(attr));
39 static void add_fd(fd_set *fds, int *maxfd, int fd)
44 if (fstat(fd, &st) == -1) {
45 dprintf("Invalid fd %d\n", fd);
48 if (st.st_nlink == 0) {
49 dprintf("fd %d was deleted\n", fd);
57 static int read_attr(char *buf, int len, int fd)
66 n = read(fd, buf, len - 1);
78 static void read_resync_start(int fd, unsigned long long *v)
83 n = read_attr(buf, 30, fd);
85 dprintf("Failed to read resync_start (%d)\n", fd);
88 if (strncmp(buf, "none", 4) == 0)
91 *v = strtoull(buf, NULL, 10);
94 static unsigned long long read_sync_completed(int fd)
96 unsigned long long val;
101 n = read_attr(buf, 50, fd);
106 val = strtoull(buf, &ep, 0);
107 if (ep == buf || (*ep != 0 && *ep != '\n' && *ep != ' '))
112 static enum array_state read_state(int fd)
115 int n = read_attr(buf, 20, fd);
119 return (enum array_state) sysfs_match_word(buf, array_states);
122 static enum sync_action read_action( int fd)
125 int n = read_attr(buf, 20, fd);
129 return (enum sync_action) sysfs_match_word(buf, sync_actions);
132 int read_dev_state(int fd)
135 int n = read_attr(buf, 60, fd);
144 if (sysfs_attr_match(cp, "faulty"))
146 if (sysfs_attr_match(cp, "in_sync"))
148 if (sysfs_attr_match(cp, "write_mostly"))
149 rv |= DS_WRITE_MOSTLY;
150 if (sysfs_attr_match(cp, "spare"))
152 if (sysfs_attr_match(cp, "blocked"))
154 cp = strchr(cp, ',');
161 static void signal_manager(void)
163 /* tgkill(getpid(), mon_tid, SIGUSR1); */
165 syscall(SYS_tgkill, pid, mgr_tid, SIGUSR1);
168 /* Monitor a set of active md arrays - all of which share the
169 * same metadata - and respond to events that require
172 * New arrays are detected by another thread which allocates
173 * required memory and attaches the data structure to our list.
177 * This is detected by array_state going to 'clear' or 'inactive'.
178 * while we thought it was active.
179 * Response is to mark metadata as clean and 'clear' the array(??)
181 * array_state if 'write-pending'
182 * We mark metadata as 'dirty' then set array to 'active'.
184 * Either ignore, or mark clean, then mark metadata as clean.
187 * detected by rd-N/state reporting "faulty"
188 * mark device as 'failed' in metadata, let the kernel release the
189 * device by writing '-blocked' to rd/state, and finally write 'remove' to
190 * rd/state. Before a disk can be replaced it must be failed and removed
191 * from all container members, this will be preemptive for the other
195 * sync_action was 'resync' and becomes 'idle' and resync_start becomes
197 * Notify metadata that sync is complete.
200 * sync_action changes from 'recover' to 'idle'
201 * Check each device state and mark metadata if 'faulty' or 'in_sync'.
204 * This only happens on finding a new array... mdadm will have set
205 * 'resync_start' to the correct value. If 'resync_start' indicates that an
206 * resync needs to occur set the array to the 'active' state rather than the
207 * initial read-auto state.
211 * We wait for a change (poll/select) on array_state, sync_action, and
212 * each rd-X/state file.
213 * When we get any change, we check everything. So read each state file,
214 * then decide what to do.
216 * The core action is to write new metadata to all devices in the array.
217 * This is done at most once on any wakeup.
218 * After that we might:
219 * - update the array_state
220 * - set the role of some devices.
221 * - request a sync_action
225 #define ARRAY_DIRTY 1
227 static int read_and_act(struct active_array *a)
229 unsigned long long sync_completed;
230 int check_degraded = 0;
231 int check_reshape = 0;
238 a->next_state = bad_word;
239 a->next_action = bad_action;
241 a->curr_state = read_state(a->info.state_fd);
242 a->curr_action = read_action(a->action_fd);
243 if (a->curr_state != clear)
245 * In "clear" state, resync_start may wrongly be set to "0"
246 * when the kernel called md_clean but didn't remove the
247 * sysfs attributes yet
249 read_resync_start(a->resync_start_fd, &a->info.resync_start);
250 sync_completed = read_sync_completed(a->sync_completed_fd);
251 for (mdi = a->info.devs; mdi ; mdi = mdi->next) {
254 if (mdi->state_fd >= 0) {
255 read_resync_start(mdi->recovery_fd,
256 &mdi->recovery_start);
257 mdi->curr_state = read_dev_state(mdi->state_fd);
261 gettimeofday(&tv, NULL);
262 dprintf("(%d): %ld.%06ld state:%s prev:%s action:%s prev: %s start:%llu\n",
263 a->info.container_member,
264 tv.tv_sec, tv.tv_usec,
265 array_states[a->curr_state],
266 array_states[a->prev_state],
267 sync_actions[a->curr_action],
268 sync_actions[a->prev_action],
272 if ((a->curr_state == bad_word || a->curr_state <= inactive) &&
273 a->prev_state > inactive) {
274 /* array has been stopped */
275 a->container->ss->set_array_state(a, 1);
276 a->next_state = clear;
279 if (a->curr_state == write_pending) {
280 a->container->ss->set_array_state(a, 0);
281 a->next_state = active;
284 if (a->curr_state == active_idle) {
285 /* Set array to 'clean' FIRST, then mark clean
288 a->next_state = clean;
291 if (a->curr_state == clean) {
292 a->container->ss->set_array_state(a, 1);
294 if (a->curr_state == active ||
295 a->curr_state == suspended)
297 if (a->curr_state == readonly) {
298 /* Well, I'm ready to handle things. If readonly
299 * wasn't requested, transition to read-auto.
302 read_attr(buf, sizeof(buf), a->metadata_fd);
303 if (strncmp(buf, "external:-", 10) == 0) {
304 /* explicit request for readonly array. Leave it alone */
307 if (a->container->ss->set_array_state(a, 2))
308 a->next_state = read_auto; /* array is clean */
310 a->next_state = active; /* Now active for recovery etc */
317 a->curr_action == idle &&
318 a->prev_action == resync) {
319 /* A resync has finished. The endpoint is recorded in
320 * 'sync_start'. We don't update the metadata
321 * until the array goes inactive or readonly though.
322 * Just check if we need to fiddle spares.
324 a->container->ss->set_array_state(a, a->curr_state <= clean);
329 a->curr_action == idle &&
330 a->prev_action == recover) {
331 /* A recovery has finished. Some disks may be in sync now,
332 * and the array may no longer be degraded
334 for (mdi = a->info.devs ; mdi ; mdi = mdi->next) {
335 a->container->ss->set_disk(a, mdi->disk.raid_disk,
337 if (! (mdi->curr_state & DS_INSYNC))
341 if (count != a->info.array.raid_disks)
346 a->curr_action == reshape &&
347 a->prev_action != reshape)
348 /* reshape was requested by mdadm. Need to see if
349 * new devices have been added. Manager does that
350 * when it sees check_reshape
354 /* Check for failures and if found:
355 * 1/ Record the failure in the metadata and unblock the device.
356 * FIXME update the kernel to stop notifying on failed drives when
357 * the array is readonly and we have cleared 'blocked'
358 * 2/ Try to remove the device if the array is writable, or can be
361 for (mdi = a->info.devs ; mdi ; mdi = mdi->next) {
362 if (mdi->curr_state & DS_FAULTY) {
363 a->container->ss->set_disk(a, mdi->disk.raid_disk,
366 if (mdi->curr_state & DS_BLOCKED)
367 mdi->next_state |= DS_UNBLOCK;
368 if (a->curr_state == read_auto) {
369 a->container->ss->set_array_state(a, 0);
370 a->next_state = active;
372 if (a->curr_state > readonly)
373 mdi->next_state |= DS_REMOVE;
377 /* Check for recovery checkpoint notifications. We need to be a
378 * minimum distance away from the last checkpoint to prevent
379 * over checkpointing. Note reshape checkpointing is handled
380 * in the second branch.
382 if (sync_completed > a->last_checkpoint &&
383 sync_completed - a->last_checkpoint > a->info.component_size >> 4 &&
384 a->curr_action > reshape) {
385 /* A (non-reshape) sync_action has reached a checkpoint.
386 * Record the updated position in the metadata
388 a->last_checkpoint = sync_completed;
389 a->container->ss->set_array_state(a, a->curr_state <= clean);
390 } else if ((a->curr_action == idle && a->prev_action == reshape) ||
391 (a->curr_action == reshape
392 && sync_completed > a->last_checkpoint) ) {
393 /* Reshape has progressed or completed so we need to
394 * update the array state - and possibly the array size
396 if (sync_completed != 0)
397 a->last_checkpoint = sync_completed;
398 /* We might need to update last_checkpoint depending on
399 * the reason that reshape finished.
400 * if array reshape is really finished:
401 * set check point to the end, this allows
402 * set_array_state() to finalize reshape in metadata
403 * if reshape if broken: do not set checkpoint to the end
404 * this allows for reshape restart from checkpoint
406 if ((a->curr_action != reshape) &&
407 (a->prev_action == reshape)) {
409 if ((sysfs_get_str(&a->info, NULL,
412 sizeof(buf)) >= 0) &&
413 strncmp(buf, "none", 4) == 0)
414 a->last_checkpoint = a->info.component_size;
416 a->container->ss->set_array_state(a, a->curr_state <= clean);
417 a->last_checkpoint = sync_completed;
420 if (sync_completed > a->last_checkpoint)
421 a->last_checkpoint = sync_completed;
423 a->container->ss->sync_metadata(a->container);
424 dprintf("(%d): state:%s action:%s next(", a->info.container_member,
425 array_states[a->curr_state], sync_actions[a->curr_action]);
427 /* Effect state changes in the array */
428 if (a->next_state != bad_word) {
429 dprintf_cont(" state:%s", array_states[a->next_state]);
430 write_attr(array_states[a->next_state], a->info.state_fd);
432 if (a->next_action != bad_action) {
433 write_attr(sync_actions[a->next_action], a->action_fd);
434 dprintf_cont(" action:%s", sync_actions[a->next_action]);
436 for (mdi = a->info.devs; mdi ; mdi = mdi->next) {
437 if (mdi->next_state & DS_UNBLOCK) {
438 dprintf_cont(" %d:-blocked", mdi->disk.raid_disk);
439 write_attr("-blocked", mdi->state_fd);
442 if ((mdi->next_state & DS_REMOVE) && mdi->state_fd >= 0) {
445 /* The kernel may not be able to immediately remove the
446 * disk. In that case we wait a little while and
449 remove_result = write_attr("remove", mdi->state_fd);
450 if (remove_result > 0) {
451 dprintf_cont(" %d:removed", mdi->disk.raid_disk);
452 close(mdi->state_fd);
453 close(mdi->recovery_fd);
458 if (mdi->next_state & DS_INSYNC) {
459 write_attr("+in_sync", mdi->state_fd);
460 dprintf_cont(" %d:+in_sync", mdi->disk.raid_disk);
463 dprintf_cont(" )\n");
465 /* move curr_ to prev_ */
466 a->prev_state = a->curr_state;
468 a->prev_action = a->curr_action;
470 for (mdi = a->info.devs; mdi ; mdi = mdi->next) {
471 mdi->prev_state = mdi->curr_state;
475 if (check_degraded || check_reshape) {
476 /* manager will do the actual check */
478 a->check_degraded = 1;
480 a->check_reshape = 1;
490 static struct mdinfo *
491 find_device(struct active_array *a, int major, int minor)
495 for (mdi = a->info.devs ; mdi ; mdi = mdi->next)
496 if (mdi->disk.major == major && mdi->disk.minor == minor)
502 static void reconcile_failed(struct active_array *aa, struct mdinfo *failed)
504 struct active_array *a;
505 struct mdinfo *victim;
507 for (a = aa; a; a = a->next) {
508 if (!a->container || a->to_remove)
510 victim = find_device(a, failed->disk.major, failed->disk.minor);
514 if (!(victim->curr_state & DS_FAULTY))
515 write_attr("faulty", victim->state_fd);
520 static void dprint_wake_reasons(fd_set *fds)
528 fprintf(stderr, "monitor: wake ( ");
529 for (i = 0; i < FD_SETSIZE; i++) {
530 if (FD_ISSET(i, fds)) {
531 sprintf(proc_path, "/proc/%d/fd/%d",
534 rv = readlink(proc_path, link, sizeof(link) - 1);
536 fprintf(stderr, "%d:unknown ", i);
540 basename = strrchr(link, '/');
541 fprintf(stderr, "%d:%s ",
542 i, basename ? ++basename : link);
545 fprintf(stderr, ")\n");
549 int monitor_loop_cnt;
551 static int wait_and_act(struct supertype *container, int nowait)
555 struct active_array **aap = &container->arrays;
556 struct active_array *a, **ap;
559 static unsigned int dirty_arrays = ~0; /* start at some non-zero value */
563 for (ap = aap ; *ap ;) {
565 /* once an array has been deactivated we want to
566 * ask the manager to discard it.
568 if (!a->container || a->to_remove) {
580 add_fd(&rfds, &maxfd, a->info.state_fd);
581 add_fd(&rfds, &maxfd, a->action_fd);
582 add_fd(&rfds, &maxfd, a->sync_completed_fd);
583 for (mdi = a->info.devs ; mdi ; mdi = mdi->next)
584 add_fd(&rfds, &maxfd, mdi->state_fd);
589 if (manager_ready && (*aap == NULL || (sigterm && !dirty_arrays))) {
590 /* No interesting arrays, or we have been told to
591 * terminate and everything is clean. Lets see about
592 * exiting. Note that blocking at this point is not a
593 * problem as there are no active arrays, there is
594 * nothing that we need to be ready to do.
598 fd = open_dev_excl(container->devnm);
600 fd = open_dev_flags(container->devnm, O_RDONLY|O_EXCL);
601 if (fd >= 0 || errno != EBUSY) {
602 /* OK, we are safe to leave */
603 if (sigterm && !dirty_arrays)
604 dprintf("caught sigterm, all clean... exiting\n");
606 dprintf("no arrays to monitor... exiting\n");
608 /* On SIGTERM, someone (the take-over mdmon) will
611 remove_pidfile(container->devnm);
624 if (*aap == NULL || container->retry_soon) {
625 /* just waiting to get O_EXCL access */
627 ts.tv_nsec = 20000000ULL;
629 sigprocmask(SIG_UNBLOCK, NULL, &set);
630 sigdelset(&set, SIGUSR1);
631 monitor_loop_cnt |= 1;
632 rv = pselect(maxfd+1, NULL, NULL, &rfds, &ts, &set);
633 monitor_loop_cnt += 1;
635 if (errno == EINTR) {
637 dprintf("monitor: caught signal\n");
639 dprintf("monitor: error %d in pselect\n",
644 dprint_wake_reasons(&rfds);
646 container->retry_soon = 0;
650 struct metadata_update *this;
652 for (this = update_queue; this ; this = this->next)
653 container->ss->process_update(container, this);
655 update_queue_handled = update_queue;
658 container->ss->sync_metadata(container);
663 for (a = *aap; a ; a = a->next) {
665 if (a->replaces && !discard_this) {
666 struct active_array **ap;
667 for (ap = &a->next; *ap && *ap != a->replaces;
672 discard_this = a->replaces;
674 /* FIXME check if device->state_fd need to be cleared?*/
677 if (a->container && !a->to_remove) {
678 int ret = read_and_act(a);
680 dirty_arrays += !!(ret & ARRAY_DIRTY);
681 /* when terminating stop manipulating the array after it
682 * is clean, but make sure read_and_act() is given a
683 * chance to handle 'active_idle'
685 if (sigterm && !(ret & ARRAY_DIRTY))
686 a->container = NULL; /* stop touching this array */
687 if (ret & ARRAY_BUSY)
688 container->retry_soon = 1;
692 /* propagate failures across container members */
693 for (a = *aap; a ; a = a->next) {
694 if (!a->container || a->to_remove)
696 for (mdi = a->info.devs ; mdi ; mdi = mdi->next)
697 if (mdi->curr_state & DS_FAULTY)
698 reconcile_failed(*aap, mdi);
704 void do_monitor(struct supertype *container)
709 rv = wait_and_act(container, first);
git / mdadm.git / blob